3 matches found
CVE-2022-45970
Alist v3.5.1 is vulnerable to Cross Site Scripting XSS via the bulletin board...
CVE-2022-45970
Alist v3.5.1 is vulnerable to Cross Site Scripting XSS via the bulletin board...
CVE-2022-45970
CVE-2022-45970 affects Alist v3.5.1 with a Cross-Site Scripting (XSS) vulnerability in the bulletin board component. The root cause is described in a GitLab YAML as improper neutralization of input during web page generation. This enables arbitrary script execution in the context of users visitin...